%% You should probably cite draft-grizzle-scim-pam-ext-01 instead of this revision. @techreport{grizzle-scim-pam-ext-00, number = {draft-grizzle-scim-pam-ext-00}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-grizzle-scim-pam-ext/00/}, author = {Kelly Grizzle and Benjamin Yoder and Jason Jones and Philip Lieberman}, title = {{SCIM Extension for Privileged Access Management}}, pagetotal = 17, year = 2017, month = sep, day = 27, abstract = {The System for Cross-domain Identity Management (SCIM) specification {[}RFC7643{]} provides schemas that represent common identity information about users and groups. Privileged Access Management (PAM) software typically makes use of common user and group models - as well as defining additional constructs - to provide fine-grained authorization and management for privileged access. This document contains a SCIM 2.0 extension for Privileged Access Management, which includes extensions to the core User and Group objects, and new resource types and schemas for standard Privileged Access Management constructs. This extension is intended to provide greater interoperability between PAM software and clients, a common language for PAM concepts, and a baseline that can be further extended to support more complex PAM requirements.}, }